{ "id": "CVE-1999-0038", "sourceIdentifier": "cve@mitre.org", "published": "1997-04-26T04:00:00.000", "lastModified": "2024-11-20T23:27:40.763", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { "lang": "en", "value": "Buffer overflow in xlock program allows local users to execute commands as root." } ], "metrics": { "cvssMetricV31": [ { "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 8.4, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH" }, "exploitabilityScore": 2.5, "impactScore": 5.9 } ], "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "baseScore": 7.2, "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE" }, "baseSeverity": "HIGH", "exploitabilityScore": 3.9, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": true, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-Other" } ] }, { "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [ { "lang": "en", "value": "CWE-120" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:data_general:dg_ux:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "CE3A815C-B264-4B1F-8243-894C21F8D1EA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:data_general:dg_ux:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "FDB5057F-A306-4250-B247-701948713AD8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:data_general:dg_ux:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "D7E43C99-DEC8-4519-90A9-ADBAA56B99C7" }, { "vulnerable": true, "criteria": "cpe:2.3:a:data_general:dg_ux:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "BEC4E336-7290-4FF2-BB71-A1ABDA3283D5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:data_general:dg_ux:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "B923A0FC-1F99-40F7-9788-5DF1A757ED27" }, { "vulnerable": true, "criteria": "cpe:2.3:a:data_general:dg_ux:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "4D9ECBD3-23BA-4832-B3F9-31D2080139CA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:data_general:dg_ux:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "C2A6CF60-2BDD-48C3-9A9A-DBBFD153B642" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "D792E16B-A1AB-4BCE-9E6E-88C17D4F57CA" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:5.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "30F950B1-7D5F-4CA9-BBEF-E6DB1A28C156" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:5.1:*:*:*:*:*:*:*", "matchCriteriaId": "333103D5-71B8-4DC1-90F7-15F2841955D6" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:5.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "8A889C10-0637-4133-AFBD-533C8397BE89" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "E292DA15-91BF-4957-9C0F-A69518538BED" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:5.3:*:*:*:*:*:*:*", "matchCriteriaId": "26144F94-63FD-4907-B548-09B68C2FC9B3" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:5.3:*:xfs:*:*:*:*:*", "matchCriteriaId": "92BF03B6-9CDC-4161-9C1C-3E73582C3D83" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "26309EFA-0991-46B6-9818-F0FBB902D5F5" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:6.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "B6A81ED6-CE92-4C10-AA2B-AB9AF573D120" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:6.0.1:*:xfs:*:*:*:*:*", "matchCriteriaId": "D157E1C1-F82B-4FDF-9ADB-5571B75E7D6B" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:6.1:*:*:*:*:*:*:*", "matchCriteriaId": "966C1A13-8007-408D-96BE-0DA3BB6CA401" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:6.3:*:*:*:*:*:*:*", "matchCriteriaId": "B2D59247-56FA-46B4-BB51-2DAE71AFC145" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sgi:irix:6.4:*:*:*:*:*:*:*", "matchCriteriaId": "15BE08F8-5F3F-45DB-BFE0-1F6F2F57A4D4" } ] } ] }, { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:bsdi:bsd_os:2.1:*:*:*:*:*:*:*", "matchCriteriaId": "766851E2-134A-4A89-931B-6F1753525684" }, { "vulnerable": true, "criteria": "cpe:2.3:o:debian:debian_linux:0.93:*:*:*:*:*:*:*", "matchCriteriaId": "E1E1BD95-EF97-4CA0-9EF1-5081DD5F782B" }, { "vulnerable": true, "criteria": "cpe:2.3:o:debian:debian_linux:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "A9EDD1D3-6E5C-4D98-9360-33949353BD7A" }, { "vulnerable": true, "criteria": "cpe:2.3:o:debian:debian_linux:1.2:*:*:*:*:*:*:*", "matchCriteriaId": "87E89840-3B57-4CBA-BE90-0BBA61F21F96" }, { "vulnerable": true, "criteria": "cpe:2.3:o:debian:debian_linux:1.3:*:*:*:*:*:*:*", "matchCriteriaId": "745ACC17-B6D6-4B4E-9648-A8B45C4A3F7A" }, { "vulnerable": true, "criteria": "cpe:2.3:o:hp:hp-ux:10.00:*:*:*:*:*:*:*", "matchCriteriaId": "3187435B-C052-4DBA-AA79-F8AC0287EE14" }, { "vulnerable": true, "criteria": "cpe:2.3:o:hp:hp-ux:10.01:*:*:*:*:*:*:*", "matchCriteriaId": "53BBFE9A-6846-4625-91AC-47AA0BC0933A" }, { "vulnerable": true, "criteria": "cpe:2.3:o:hp:hp-ux:10.08:*:*:*:*:*:*:*", "matchCriteriaId": "2170549C-80D2-4FF8-AC07-BD4124125B02" }, { "vulnerable": true, "criteria": "cpe:2.3:o:hp:hp-ux:10.10:*:*:*:*:*:*:*", "matchCriteriaId": "38BFA923-7D80-4F01-AF9F-6F13209948AC" }, { "vulnerable": true, "criteria": "cpe:2.3:o:hp:hp-ux:10.16:*:*:*:*:*:*:*", "matchCriteriaId": "38E41C26-A086-4C9C-83D8-CB910F4B67F1" }, { "vulnerable": true, "criteria": "cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*", "matchCriteriaId": "EDE44C49-172C-4899-8CC8-29AA99A7CD2F" }, { "vulnerable": true, "criteria": "cpe:2.3:o:hp:hp-ux:10.24:*:*:*:*:*:*:*", "matchCriteriaId": "4259A901-A1CF-44EE-80C4-2031D3FCADC3" }, { "vulnerable": true, "criteria": "cpe:2.3:o:hp:hp-ux:10.30:*:*:*:*:*:*:*", "matchCriteriaId": "09070FE3-EF6B-41F6-89D8-3C9E31F3A6BF" }, { "vulnerable": true, "criteria": "cpe:2.3:o:hp:hp-ux:10.34:*:*:*:*:*:*:*", "matchCriteriaId": "CFD50216-90AC-480E-A11C-E88E64C6D84A" }, { "vulnerable": true, "criteria": "cpe:2.3:o:ibm:aix:3.2:*:*:*:*:*:*:*", "matchCriteriaId": "DD5E0678-45C7-492A-963C-897494D6878F" }, { "vulnerable": true, "criteria": "cpe:2.3:o:ibm:aix:4.1:*:*:*:*:*:*:*", "matchCriteriaId": "FBF25306-E7C2-4F9A-A809-4779A6C0A079" }, { "vulnerable": true, "criteria": "cpe:2.3:o:ibm:aix:4.2:*:*:*:*:*:*:*", "matchCriteriaId": "05F20EC2-ADE6-4F96-A2E7-1DCCA819D657" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sun:solaris:2.4:*:x86:*:*:*:*:*", "matchCriteriaId": "1F881110-7B54-49DA-B23A-710273430C44" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sun:solaris:2.5:*:x86:*:*:*:*:*", "matchCriteriaId": "200D8CB2-0D52-40A8-9CD9-6E4513605201" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sun:solaris:2.5.1:*:ppc:*:*:*:*:*", "matchCriteriaId": "54AF87E4-52A4-44CA-B48E-A5BB139E6410" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sun:solaris:2.5.1:*:x86:*:*:*:*:*", "matchCriteriaId": "F66BAF35-A8B9-4E95-B270-444206FDD35B" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sun:sunos:5.3:*:*:*:*:*:*:*", "matchCriteriaId": "C7A22D21-E0A9-4B56-86C7-805AD1A610D6" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sun:sunos:5.4:*:*:*:*:*:*:*", "matchCriteriaId": "7AAC8954-74A8-4FE3-ABE7-57DA041D9D8F" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sun:sunos:5.5:*:*:*:*:*:*:*", "matchCriteriaId": "5B72953B-E873-4E44-A3CF-12D770A0D416" }, { "vulnerable": true, "criteria": "cpe:2.3:o:sun:sunos:5.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "39F847DB-65A9-47DA-BCFA-A179E5E2301A" } ] } ] } ], "references": [ { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0038", "source": "cve@mitre.org" }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0038", "source": "af854a3a-2127-422b-91ae-364da2661108" } ] }